ITS translations: security problem?
Marcus J. Ranum
mjr at osiris.UUCP
Sat Feb 6 00:30:07 AEST 1988
>In article <9690 at tekecs.TEK.COM> andrew at frip.gwd.tek.com (Andrew Klossner) writes:
> So you add s|^/bin/rm$|/user/me/bin/rm| to your
> translation list."
>
Rather than building things like this into the OS, they can just as
easily be handled in the shell. Rather than forcing everyone to worry about
security problems, etc, etc, why not simply have your shell support all the
translation you can handle, since the UNIX file system layout is pretty
straightforward.
Sure, there'd be a performance hit, but it's better to keep those
in the shell, and keep everything else as straightforward as possible.
Golly, I can see it now:
s/\/usr\//C:/g
s/\/$HOME\/D:/g
...
--mjr();
--
------------------------------------------------------------------------------
...ich bin in einem dusenjet ins jahr 53 vor chr...ich lande im antiken Rom...
einige gladiatoren spielen scrabble...ich rieche PIZZA...
More information about the Comp.unix.wizards
mailing list